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AMENDMENTS TO THE CLAIMS 

Please amend the claims as follows. 

1. (Currently Amended) A method of encryption of data in a digital television system 
communicated between a first decoder and a portable security module s e cond d e vice , 
wherein at least one precalculated key pair is stored in a memory of the first decoder d e vic e, 
said at least one key pair comprising a session key and an encrypted version of the session 
key prepared using a transport key, the encrypted version of the session key being 
subsequently communicated to the portable security module s e cond d e vic e which decrypts 
the encrypted version using an equivalent transport key stored in its memory such that data 
communicated from at least the s e cond portable security module to the first decoder deviee 
may thereafter be encrypted and decrypted by the session key in the r e sp e ctiv e devic e s , 

2. (Currently Amended) A method as claimed in claim 1, in which a plurality of key pairs are 
stored in the memory of the first decoder deviee, the first decoder d eviee selecting and 
processing at least one session key to generate a definitive session key and communicating 
the associated encrypted version of said at least one session key to the s e cond device 
portable security module for decryption and processing by the s e cond d e vic e portable 
security module to generate the definitive session key. 

3. (Currently Amended) A method as claimed in claim 2 in which a subset of a plurality of 
stored session keys is chosen by the first decoder deviee to generate the definitive session 
key, the associated encrypted versions of the subset of session keys being communicated to 
the s e cond d e vic e portable security module for decryption and processing. 

4. (Currently Amended) A method as claimed in claim 2 e^-J, in which the order of 



2 



Application No.: 09/890,587 Docket No.: 1 1345/034001 

combination of a plurality of session keys used to generate the definitive session key is 
communicated from the first decoder to the s e cond dovico portable security module . 

5. (Currently Amended) A method as claimed in claim 4 in which an initial session key value 
known to both the first decoder and the s e cond d e vic e portable security module is repeatedly 
encrypted in both devices by an ordered sequence of session keys using an encryption 
algorithm sensitive to the order of encryption. 

6. (Currently Amended) A method as claimed in any pr e c e ding claim j_in which said at least 
one precalculated key pair is selected from a larger set of precalculated key pairs prior to 
being stored in the first decoder de¥i€e. 

7. (Currently Amended) A method as claimed in any pr e c e ding claim i in which the encrypted 
version of a session key communicated to the s e cond device portable security module also 
includes a signature value readable by the second d e vic e portable security module to verify 
the authenticity of the encrypted version of the session key. 

8. (Currently Amended) A method as claimed in any pr e ceding claim i in which an algorithm 
and transport key used to encrypt and decrypt a session key correspond to a symmetric 
algorithm and associated symmetric key. 

9. (Currently Amended) A method as claimed in any pr e c e ding claim Hn which an encryption 
algorithm used with a session key to encrypt and decrypt data communicated between the 
first decoder and the s e cond d e vic e portable security module corresponds to a symmetric 
algorithm. 

10. (Canceled) 
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11. (Canceled) 

12. (Currently Amended) A method as claimed in claim 1[[1]], in which the portable security 
module corresponds to one of a smart card and a conditional access module. 

13. (Currently Amended) A method as claimed in ai^^-ef^laim[[s]] 1 te-9, in which the first 
decoder deviee corresponds to a conditional access module and the s e cond d e vic e portable 
security module corresponds to a smart card. 

14. (Currently Amended) A method as claimed in any of claim [[s]] 10 to 13 , in which data 
encrypted and decrypted with a session key corresponds to control word data. 

15. (Currently Amended) A method as claimed in any of claim [[s]] 10 to 13 , in which data 
encrypted and decrypted with a session key corresponds to descrambled broadcast data. 

16. (Canceled) 

17. (Currently Amended) A method as claimed in aBj^-ef-claim[[s]] 1 te-9 as applied to a home 
network system, wherein the first decoder and the portable security module th e first and 
s e cond d e vic e s corresponding to first and s e cond consumer electronic devices adapted to 
transfer data via a communication link. 

18. (Canceled) 

19. (Canceled) 

20. (Canceled) 

21. (Currently Amended) A digital television system for providing secure communication of 
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data between a first decoder and a portable security module s e cond d e vic e s , said first decoder 
d e vic e comprising a memory for storing at least one precalculated key pair comprising a 
session key and an encrypted version of the session key prepared using a transport key, and 
communication means for communicating the encrypted version of the session key to said 
portable security module s e cond d e vic e, said portable security module s e cond device 
comprising a memory for storing an equivalent transport key, decryption means for 
decrypting said encrypted version of the session key using said equivalent transport key, and 
means for encrypting data to be communicated to said first decoder d e vic e using said session 
key. 

22. (Currently Amended) A system as claimed in claim 21, v^herein the memory of the first 
decoder d e vic e is adapted to store a plurality of key pairs, the first decoder d e vic e 
comprising means for selecting and processing at least one session key to generate a 
definitive session key said communication means being adapted to communicate the 
associated encrypted version of said at least one session key to the portable security module 
s e cond device , said portable security module s e cond d e vice comprising means for processing 
said at least one session key to generate the definitive session key. 

23. (Currently Amended) A system as claimed in claim 21 e^53, in which the encrypted version 
of a session key includes a signature value readable by the portable security module seeend 
d e vic e to verify the authenticity of the encrypted version of the session key. 

24. (Currently Amended) A system as claimed in any of claim[[s]] 21 to 23 , in which an 
algorithm and transport key used to encrypt and decrypt a session key correspond to a 
symmetric algorithm and associated symmetric key. 
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25. (Currently Amended) A system as claimed in any of claim[[s]] 21 to 2^ , in which an 
encryption algorithm used with a session key to encrypt and decrypt data communicated 
between the first decoder and the portable security module s e cond d e vic e corresponds to a 
symmetric algorithm. 

26. (Canceled) 

27. (Canceled) 

28. (Currently Amended) A system as claimed in claim [[27]] 21, in which the portable security 
module corresponds to one of a smart card and a conditional access module. 

29. (Canceled) 

30. (Canceled) 

31. (Currently Amended) A system as claimed in any-ef claim [[s]] 21 to 25 as applied to a home 
network system, wherein the first decoder and the portable security module th e first and 
s e cond d e vic e s corresponding to first and s e cond consumer electronic devices adapted to 
transfer data via a communication link. 

32. -33. (Canceled) 
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